CVE-2015-4182
Description
The administrative web interface in Cisco Identity Services Engine (ISE) before 1.3 allows remote authenticated users to bypass intended access restrictions, and obtain sensitive information or change settings, via unspecified vectors, aka Bug ID CSCui72087.
Risk Information
Base Score
5.4
MODERATE
Vector
AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
EPSS Score
Exploitation Probability
0.28
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Cisco Identity Services Engine Improper Web Page Controls Privilege Escalation Vulnerability For Cisco Identity Services Engine | NCM |
| CVE-2015-4182 | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-1706002 | Security Update for Cisco Identity Services Engine 2.0(0.905) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234